Endpoint

4/27/2017
12:50 PM
50%
50%

IRS and Immigration Officials Impersonated in Call Center Scam

A call center in India was used to scare US residents with threats of imprisonment and deportation in a ruse that impersonated US officials.

With stolen data and a call center based in India, a group of thieves impersonated Internal Revenue Service and US Citizenship and Immigration Services officials to scare money out of US residents.

Ashvinbhai Chaudhari, 28, plead guilty to one count of conspiracy to commit money laundering in the case, the Department of Justice announced Wednesday. Chaudhari and his co-conspirators used information from data brokers to create a ruse where Indian call center operators would impersonate IRS and immigration officials and contact US residents to threaten them with arrest, imprisonment, fines, or deportation unless they paid money they allegedly owed the government.

The victims were instructed to make payments by wiring money or purchasing stored value cards. Once the funds were received, the call centers would use a network of "runners" located in the US to liquidate and launder the money, according to the DOJ.

Chaudhari, an Indian national who resided in Texas at the time of the theft, is one of 55 other individuals who have been charged in the case. He is scheduled to be sentenced on July 21. This case is the latest example of the rapid rise in call center fraud, which spiked 113% in 2016.

Read more about the call center case here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
4/28/2017 | 11:01:47 AM
Accountability
 

Glad to hear somebody is held accountable on this scam, that might help to discourage some others.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
4/28/2017 | 11:00:12 AM
IRSs collectors
Actually, just remembered, as far as I hear from IRS, they will be hiring collectors to make calls to people who owe money to IRS, so this situation will get more compels.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
4/28/2017 | 10:58:30 AM
IRS impersonation
 

IRS keeps telling everyone that they do not ask for money on the phone we keep falling into these traps.
'PowerSnitch' Hacks Androids via Power Banks
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/8/2018
Symantec Intros USB Scanning Tool for ICS Operators
Jai Vijayan, Freelance writer,  12/5/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
10 Best Practices That Could Reshape Your IT Security Department
This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-20102
PUBLISHED: 2018-12-12
An out-of-bounds read in dns_validate_dns_response in dns.c was discovered in HAProxy through 1.8.14. Due to a missing check when validating DNS responses, remote attackers might be able read the 16 bytes corresponding to an AAAA record from the non-initialized part of the buffer, possibly accessing...
CVE-2018-20103
PUBLISHED: 2018-12-12
An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion.
CVE-2018-1480
PUBLISHED: 2018-12-12
IBM BigFix Platform 9.2.0 through 9.2.14 and 9.5 through 9.5.9 does not set the 'HttpOnly' attribute on authorization tokens or session cookies. If a Cross-Site Scripting vulnerability also existed attackers may be able to get the cookie values via malicious JavaScript and then hijack the user sessi...
CVE-2018-1481
PUBLISHED: 2018-12-12
IBM BigFix Platform 9.2.0 through 9.2.14 and 9.5 through 9.5.9 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 140763.
CVE-2018-1484
PUBLISHED: 2018-12-12
IBM BigFix Platform 9.2.0 through 9.2.14 and 9.5 through 9.5.9 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent...